Man-in-the-Middle (MitM) attack in Red Hat OpenStack 17.1

1) Man-in-the-Middle (MitM) attack

EUVDB-ID: #VU100769

Risk: Medium

CVSSv4.0: 1.3 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-8007

CWE-ID: CWE-300 - Channel Accessible by Non-Endpoint ('Man-in-the-Middle')

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists within the openstack-tripleo-common component, which may allow an attacker to deploy compromised container images via disabling TLS certificate verification for registry mirrors. A remote attacker can perform a man-in-the-middle (MitM) attack and bypass implemented security restrictions.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Red Hat OpenStack: before 17.1.4

python-tripleoclient (Red Hat package): before 16.5.1-17.1.20240913093745.f3599d0.el8ost

openstack-tripleo-common (Red Hat package): before 15.4.1-17.1.20240911093743.e5b18f2.el8ost

CPE2.3

• cpe:2.3:a:red_hat:red_hat_openstack:*:*:*:*:*:*:*:*
• cpe:2.3:o:red_hat:python-tripleoclient_redhat_package:*:*:*:*:*:red_hat_enterprise_linux:*:*
• cpe:2.3:o:red_hat:openstack-tripleo-common_redhat_package:*:*:*:*:*:red_hat_enterprise_linux:*:*

External links

https://access.redhat.com/errata/RHSA-2024:9991

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.